Student Registration and Fee Payment System is a student registration and fee payment management system. student registration and fee payment system v1.0 is vulnerable to SQL injection, which originates from /scms/student. php is missing SQL data filtering and escaping. An attacker could use this vulnerability to execute illegal SQL commands to steal sensitive database data.